OIDC Verifier Auth

Well Known OpenId Configuration

The standard OpenID Connect Well Known configuration metadata endpoint.

This endpoint is unprotected, public facing and can be used by any party wishing to discover the OpenID Connect capabilities.

Request

path Parameters

required

string <uuid>

Verifier ID

Example: 41458e5a-9092-40b7-9a26-d4eb43c5792f

Responses

200

Returns OpenID configuration

get/ext/oidc/v1/verifiers/{id}/.well-known/openid-configuration

Request samples

Response samples

application/json

{"authorization_endpoint": "https://tenant.vii.mattr.global/ext/oidc/v1/issuers/983c0a86-204f-4431-9371-f5a22e506599/authorize",
"claims_parameter_supported": true,
"claims_supported": ["sub",
"sid",
"auth_time",
"iss"
],
"code_challenge_methods_supported": ["S256"
],
"end_session_endpoint": "https://tenant.vii.mattr.global/ext/oidc/v1/issuers/983c0a86-204f-4431-9371-f5a22e506599/session/end",
"grant_types_supported": ["implicit",
"authorization_code",
"refresh_token"
],
"id_token_signing_alg_values_supported": ["HS256",
"ES256"
],
"issuer": "https://tenant.vii.mattr.global",
"jwks_uri": "https://tenant.vii.mattr.global/ext/oidc/v1/issuers/983c0a86-204f-4431-9371-f5a22e506599/jwks",
"registration_endpoint": "https://tenant.vii.mattr.global/ext/oidc/v1/issuers/983c0a86-204f-4431-9371-f5a22e506599/clients",
"request_object_signing_alg_values_supported": ["HS256",
"RS256",
"PS256",
"ES256",
"EdDSA"
],
"request_parameter_supported": true,
"request_uri_parameter_supported": true,
"require_request_uri_registration": true,
"response_modes_supported": ["form_post",
"fragment",
"query"
],
"response_types_supported": ["code id_token",
"code",
"id_token",
"none"
],
"scopes_supported": ["openid",
"offline_access"
],
"subject_types_supported": ["public"
],
"token_endpoint_auth_methods_supported": ["none",
"client_secret_basic",
"client_secret_jwt",
"client_secret_post",
"private_key_jwt"
],
"token_endpoint_auth_signing_alg_values_supported": ["HS256",
"RS256",
"PS256",
"ES256",
"EdDSA"
],
"token_endpoint": "https://tenant.vii.mattr.global/ext/oidc/v1/issuers/983c0a86-204f-4431-9371-f5a22e506599/token",
"userinfo_endpoint": "https://tenant.vii.mattr.global/ext/oidc/v1/issuers/983c0a86-204f-4431-9371-f5a22e506599/me",
"userinfo_signing_alg_values_supported": ["HS256",
"ES256"
],
"claim_types_supported": ["normal"
]
}

Retrieve Token

OIDC Token endpoint

The OpenId Connect /token endpoint is used to obtain the access_token and id_token by presenting a valid authorization code

Analytic events

OIDC_VERIFIER_AUTH_START
OIDC_VERIFIER_AUTH_SUCCESS
OIDC_VERIFIER_AUTH_FAIL

Request

path Parameters

required

string <uuid>

Verifier ID

Example: 41458e5a-9092-40b7-9a26-d4eb43c5792f

Request Body schema: application/x-www-form-urlencoded

Token endpoint request

One of:

	string
client_secret	string
grant_type	string
code	string
redirect_uri	string <uri>

Responses

200

400

Bad Request

post/ext/oidc/v1/verifiers/{id}/token

Request samples

application/x-www-form-urlencoded

No sample

Response samples

application/json

{"access_token": "string",
"token_type": "bearer",
"refresh_token": "string",
"expires_in": 0,
"id_token": "string"
}

➔ Next to OIDC Verifiers